Position: Cybersecurity GRC Consultant

Cybersecurity GRC Consultant

Contract period: -

Location: Oslo, Stavanger

Main tasks

• Cybersecurity governance
• Maintain, develop and mature Company’s cybersecurity governance framework, policies and standards
• Ensure alignment with internal risk frameworks and enterprise governance models
• Translate strategy and regulatory requirements into practical, implementable controls
• Risk management
• Facilitate and perform cybersecurity risk assessments across IT, OT and digital initiatives
• Support threat and risk based decision making for projects, suppliers and operations
• Track risk treatment plans, risk acceptance and management actions
• Compliance and assurance
• Support compliance with relevant laws, regulations and industry standards (e.g. NIS2, ISO/IEC 27001, IEC 62443)
• Plan and execute internal cybersecurity assessments
• Contribute to manag...